$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft File: kTOGkN66V4znOCGKniIIVNG1J18.mft (raw, json) Hash identifier: WGDlqJ4JtQXX6oAkiBgQB+85uyGQLdk+ZAtg3avFdS8= Subject key identifier: 99:EA:4A:37:0E:40:96:83:A4:6B:6E:EB:AA:3E:E2:2D:45:2D:01:C0 Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Certificate serial: 043F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft Manifest number: 042C Signing time: Sat 10 May 2025 23:59:27 +0000 Manifest this update: Sat 10 May 2025 23:59:27 +0000 Manifest next update: Sat 17 May 2025 23:59:27 +0000 Files and hashes: 1: kTOGkN66V4znOCGKniIIVNG1J18.crl (hash: r+h7rw3caiGqRr+C07GUs7BZkbEQDv6TuuaId1/BtZ0=) 2: E7DBA61CA1FA11EF9696DF59C4F9AE02.roa (hash: 346r3b4w4VthONfD4bZWfxOP9wmeXPFHqji5dvclr0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:59:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1087 (0x43f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F605B, serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Validity Not Before: May 10 23:59:27 2025 GMT Not After : May 17 23:59:27 2025 GMT Subject: CN=681fe85f-39a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:f2:6d:0c:27:cb:f6:96:85:75:44:e9:c8:08: c0:0e:9b:f0:c2:14:a0:2a:cb:24:f7:65:95:63:32: 7e:b5:03:c6:01:92:1e:5e:8f:d8:d8:88:a7:18:10: 7d:b8:f4:c9:ff:5b:41:5b:b3:01:35:42:88:a6:8c: a6:8d:25:10:c6:39:3b:bd:f2:a9:dc:f6:cc:9e:59: 22:17:68:04:2a:bf:ea:1a:29:a6:4f:df:70:ea:7b: 95:a1:1a:66:68:1c:b7:60:a9:ff:75:3c:26:a3:ea: a6:72:e3:80:99:1b:cb:23:dc:d0:e9:0f:56:e1:2d: 94:e2:67:d4:a0:b1:d7:0f:b8:d6:66:11:ba:1a:2d: 35:6f:d3:f5:da:d1:83:e6:ae:3e:bc:72:63:df:14: 0f:eb:2b:b5:e9:8e:c2:08:e7:bf:fb:dc:20:de:a2: 06:f8:45:4a:4b:06:2a:6d:53:87:d8:fd:08:4a:a9: 7d:12:54:a9:9b:80:d8:14:6d:40:ad:95:88:ae:0f: 8d:59:eb:53:0d:af:05:8d:52:85:2e:33:b3:a5:1e: 1d:71:46:61:ca:52:8f:02:06:fb:d5:b7:71:20:1e: 62:76:7c:b5:65:28:ab:62:17:58:34:3b:8c:45:28: ab:f7:51:e8:67:33:29:2c:56:73:f5:b5:d0:4b:e7: 34:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:EA:4A:37:0E:40:96:83:A4:6B:6E:EB:AA:3E:E2:2D:45:2D:01:C0 X509v3 Authority Key Identifier: keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:3a:cc:c6:5d:f8:24:85:49:41:a3:4b:6b:5c:75:da:fa:02: e5:50:2e:b0:93:85:bc:c1:b1:45:57:d6:fa:24:d9:22:d5:09: 36:5c:99:27:14:e0:2d:84:37:9e:90:d4:4a:c4:a5:72:6f:14: c1:ec:69:c5:1f:64:7c:70:2f:df:c0:93:3f:a9:7c:65:3d:ab: 1f:58:45:dd:3e:f6:d6:2e:32:e8:3f:5c:cc:13:9f:f9:bd:9f: 4e:67:1e:bd:f9:25:a2:11:a0:1c:2c:2f:68:b4:01:8e:43:6f: 3f:5f:08:5f:8d:dd:f5:82:5a:f0:52:d2:29:7e:cb:0b:27:3d: 36:01:b1:8f:6a:de:e4:a6:49:9d:92:b7:61:fa:57:35:0b:df: 17:42:22:4f:48:c3:7b:69:8a:83:ef:5a:d3:78:a7:ad:00:3b: ea:cd:50:c4:6e:85:4e:50:47:91:b3:e7:55:36:81:32:1f:e7: 76:ad:2a:60:a0:4a:98:ae:4c:98:03:4c:fe:9d:2c:29:a0:b0: 2b:69:84:c8:e9:5e:25:ba:54:4c:d2:0f:b9:0e:d0:a6:d1:e8: f8:06:b4:8f:f2:5f:c2:6b:54:b0:bf:16:19:1c:32:71:18:75: df:47:ca:d3:f7:8e:ea:48:81:e3:91:63:71:cd:19:17:8c:7d: 95:cd:da:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0 RDFCNTI3NUYwHhcNMjUwNTEwMjM1OTI3WhcNMjUwNTE3MjM1OTI3WjAYMRYwFAYD VQQDEw02ODFmZTg1Zi0zOWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8/JtDCfL9paFdUTpyAjADpvwwhSgKssk92WVYzJ+tQPGAZIeXo/Y2IinGBB9 uPTJ/1tBW7MBNUKIpoymjSUQxjk7vfKp3PbMnlkiF2gEKr/qGimmT99w6nuVoRpm aBy3YKn/dTwmo+qmcuOAmRvLI9zQ6Q9W4S2U4mfUoLHXD7jWZhG6Gi01b9P12tGD 5q4+vHJj3xQP6yu16Y7CCOe/+9wg3qIG+EVKSwYqbVOH2P0ISql9ElSpm4DYFG1A rZWIrg+NWetTDa8FjVKFLjOzpR4dcUZhylKPAgb71bdxIB5idny1ZSirYhdYNDuM RSir91HoZzMpLFZz9bXQS+c0xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnqSjcO QJaDpGtu66o+4i1FLQHAMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0 Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjA1Qi85ODE3RDI3MjY0Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0 em5PQ0dLbmlJSVZORzFKMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTOszGXfgkhUlBo0trXHXa+gLlUC6wk4W8wbFFV9b6JNki1Qk2XJkn FOAthDeekNRKxKVybxTB7GnFH2R8cC/fwJM/qXxlPasfWEXdPvbWLjLoP1zME5/5 vZ9OZx69+SWiEaAcLC9otAGOQ28/Xwhfjd31glrwUtIpfssLJz02AbGPat7kpkmd krdh+lc1C98XQiJPSMN7aYqD71rTeKetADvqzVDEboVOUEeRs+dVNoEyH+d2rSpg oEqYrkyYA0z+nSwpoLAraYTI6V4lulRM0g+5DtCm0ej4BrSP8l/Ca1SwvxYZHDJx GHXfR8rT947qSIHjkWNxzRkXjH2VzdpM -----END CERTIFICATE-----Generated at Mon May 12 19:55:45 2025 by rpki-client